Homework Solution / Points to Ponder

Homework 1/2

• If you need help to run wireshark, you did not try hard enough. If you cannot capture anything, you are capturing the wrong interface. Every computer is configured differently, you really should practice enough to feel comfortable with the tool.
• All questions must be answered with reference to actual network trace from protocol analysis. Otherwise, no credit.
  • You should get use to extracting (cut and paste) the information in trace file to prove you point. For example, if you think it is SSL, you should show the actually client hello and server hello packet.
• There are few places (signup form, email, etc.) where passwords are handled. Discuss how passwords are being handled and how secure the methods are.
  • If a password is in clear text, highlight the information in the network trace to prove it.
• What protocol is used when the form is submitted?
  • You should see many things other than HTTP, there are TCP handshake, and routing protocol, etc.
• Is the web form for signup secure?
  • Define what secure is and goes from there. Discuss if the fields are encrypted, if SSL is used, etc.
• Can someone else signup for you?
  • If I know your email address, I can do it.
• What improvements can be made?
  • Many: SSL, hash passing, things you will learn in the semester.